[krbdev.mit.edu #7566] krb5-1.10.3 - Ticket lifetimes can be "negative" (this is a bad idea)

Richard Basch via RT rt-comment at krbdev.mit.edu
Thu Feb 7 23:03:20 EST 2013

Previous message: [krbdev.mit.edu #7561] SVN Commit
Next message: [krbdev.mit.edu #7567] SVN Commit
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

It is possible to request tickets with a "negative" lifetime, e.g. "kinit -l
-3600".

 

It shouldn't be possible to request tickets whose "start time" is greater
than the "expiration time". I suspect there be some issues on 32-bit OS's
with underflows.

Previous message: [krbdev.mit.edu #7561] SVN Commit
Next message: [krbdev.mit.edu #7567] SVN Commit
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the krb5-bugs mailing list